Full Disclosure: by author
85 messages
starting Sep 08 16 and
ending Sep 19 16
Date index |
Thread index |
Author index
0xr0ot
CVE request - Samsumg Mobile Phone SVE-2016-6248: SystemUI Security issue 0xr0ot (Sep 08)
Apple Product Security
APPLE-SA-2016-09-13-3 watchOS 3 Apple Product Security (Sep 15)
APPLE-SA-2016-09-13-1 iOS 10 Apple Product Security (Sep 15)
APPLE-SA-2016-09-13-2 Xcode 8 Apple Product Security (Sep 15)
APPLE-SA-2016-09-14-1 iOS 10.0.1 Apple Product Security (Sep 15)
Asterisk Security Team
AST-2016-006: Crash on ACK from unknown endpoint Asterisk Security Team (Sep 08)
AST-2016-007: RTP Resource Exhaustion Asterisk Security Team (Sep 08)
bashis
Heap 'two-write-where-and-what' format string (FMS) technique bashis (Sep 08)
Blazej Adamczyk
Joomla! session id not hashed. Blazej Adamczyk (Sep 20)
Brandon Perry
Segmentation fault in Oracle Outside In File ID 8.5.3 Brandon Perry (Sep 19)
cfpbrussels2017
Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium cfpbrussels2017 (Sep 27)
Curesec Research Team (CRT)
MyBB 1.8.6: Improper validation of data passed to eval Curesec Research Team (CRT) (Sep 15)
Kajona 4.7: XSS & Directory Traversal Curesec Research Team (CRT) (Sep 15)
Peel Shopping 8.0.2: Object Injection Curesec Research Team (CRT) (Sep 15)
MyBB 1.8.6: SQL Injection Curesec Research Team (CRT) (Sep 15)
MyBB 1.8.6: CSRF, Weak Hashing, Plaintext Passwords Curesec Research Team (CRT) (Sep 15)
Oxwall 1.8.0: XSS & Open Redirect Curesec Research Team (CRT) (Sep 15)
Daniel Ashton
Call for Papers 0x7E0 hack4 in Berlin Daniel Ashton (Sep 27)
Dawid Golunski
Re: CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day ) Dawid Golunski (Sep 27)
CVE-2016-4264 Adobe ColdFusion <= 11 XXE Vulnerability Dawid Golunski (Sep 08)
CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day ) Dawid Golunski (Sep 12)
Fernando A. Lagos Berardi
XSS Wordpress W3 Total Cache <= 0.9.4.1 Fernando A. Lagos Berardi (Sep 21)
Re: XSS Wordpress W3 Total Cache <= 0.9.4.1 Fernando A. Lagos Berardi (Sep 27)
Francisco Amato
Welcome Faraday 2.1! Collaborative Penetration Test & Vulnerability Management Platform Francisco Amato (Sep 27)
Hicham A. Tolimat
Facebook Privacy Issue - IRL Direct Human Reference Hicham A. Tolimat (Sep 19)
Iraklis A. Mathiopoulos
ShoreTel Connect ONSITE Blind SQL Injection Vulnerability Iraklis A. Mathiopoulos (Sep 19)
Julien Ahrens
[RCESEC-2016-006] XenForo ToggleME 3.1.2 "/admin.php?options/list/toggleME" Multiple Persistent Cross-Site Scriptings Julien Ahrens (Sep 12)
Justa Person
Re: Brute force every Samsung repair customer's info with ease Justa Person (Sep 15)
Re: Brute force every Samsung repair customer's info with ease Justa Person (Sep 15)
Brute force every Samsung repair customer's info with ease Justa Person (Sep 12)
Karn Ganeshen
ELNet Energy & Electrical Power Meter - Mulitple Vulnerabilities Karn Ganeshen (Sep 08)
Multiple vulnerabilities - Powerlogic/Schneider Electric IONXXXX series Smart Meters Karn Ganeshen (Sep 08)
BINOM3 Electric Power Quality Meter Vulnerabilities Karn Ganeshen (Sep 15)
Larry W. Cashdollar
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla Larry W. Cashdollar (Sep 28)
Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla Larry W. Cashdollar (Sep 28)
Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6 Larry W. Cashdollar (Sep 30)
Manuel Garcia Cardenas
Blind SQL Injection in Exponent CMS <= v2.3.9 Manuel Garcia Cardenas (Sep 20)
Mark Koek
Re: CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day ) Mark Koek (Sep 27)
Re: CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day ) Mark Koek (Sep 15)
Re: CVE-2016-6662 - MySQL Remote Root Code Execution / Privilege Escalation ( 0day ) Mark Koek (Sep 27)
Matteo Beccati
[REVIVE-SA-2016-002] Revive Adserver - Multiple vulnerabilities Matteo Beccati (Sep 28)
Matthias Deeg
Radioactive Mouse States the Obvious: Exploiting unencrypted and unauthenticated data communication of wireless mice Matthias Deeg (Sep 30)
[SYSS-2016-061] PERIDUO-710W - Insufficient Verification of Data Authenticity (CWE-345) Matthias Deeg (Sep 30)
[SYSS-2016-060] Logitech M520 - Insufficient Verification of Data Authenticity (CWE-345) Matthias Deeg (Sep 30)
[SYSS-2016-058] CHERRY B.UNLIMITED AES - Insufficient Verification of Data Authenticity (CWE-345) Matthias Deeg (Sep 30)
MustLive
Multiple vulnerabilities in ASUS RT-N10 MustLive (Sep 15)
Nguyen Anh Quynh
Keypatch v2.0 is out! Nguyen Anh Quynh (Sep 15)
Nick
Re: Brute force every Samsung repair customer's info with ease Nick (Sep 15)
Nightwatch Cybersecurity
Insecure transmission of data in Android applications developed with Adobe AIR [CVE-2016-6936] Nightwatch Cybersecurity (Sep 15)
oststrom (public)
CVE-2016-5725 - JCraft/JSch Java Secure Channel <= 0.1.53 recursive sftp-get path traversal (client-side, windows) oststrom (public) (Sep 21)
Paul Baade
Security Advisory -- Multiple Vulnerabilities - MuM Map Edit Paul Baade (Sep 15)
Pierre Kim
Multiple vulnerabilities found in the Dlink DWR-932B (backdoor, backdoor accounts, weak WPS, RCE ...) Pierre Kim (Sep 28)
redrain root
cve request: Airmail URLScheme render and file:// xss vulnerability redrain root (Sep 08)
[oss-security] CVE request - Airmail URLScheme render and file:// xss vulnerability redrain root (Sep 12)
Ricardo Iramar dos Santos
IE11 is not following CORS specification for local files Ricardo Iramar dos Santos (Sep 27)
Rio Sherri
Symantec Messaging Gateway <= 10.6.1 Directory Traversal Rio Sherri (Sep 28)
Unrar 0.0.1 Memory Corruption Rio Sherri (Sep 08)
KeepNote 0.7.8 Remote Command Execution Rio Sherri (Sep 29)
SEC Consult Vulnerability Lab
SEC Consult SA-20160906-0 :: Private key for browser-trusted certificate embedded in multiple Aruba Networks / Alcatel-Lucent products SEC Consult Vulnerability Lab (Sep 06)
SEC Consult SA-20160922-0 :: Potential backdoor access through multiple vulnerabilities in Kerio Control Unified Threat Management SEC Consult Vulnerability Lab (Sep 22)
Simon Rawet
Re: XSS Wordpress W3 Total Cache <= 0.9.4.1 Simon Rawet (Sep 27)
Stefan Kanthak
Defense in depth -- the Microsoft way (part 43): restricting the DLL load order fails Stefan Kanthak (Sep 08)
Summer of Pwnage
Authorization bypass in InfiniteWP Admin Panel Summer of Pwnage (Sep 10)
Reflected Cross-Site Scripting vulnerability in MailPoet Newsletters plugin Summer of Pwnage (Sep 10)
Persistent Cross-Site Scripting vulnerability in WordPress due to unsafe processing of file names Summer of Pwnage (Sep 08)
Command injection in InfiniteWP Admin Panel Summer of Pwnage (Sep 10)
Persistent Cross-Site Scripting in Woocommerce WordPress plugin Summer of Pwnage (Sep 10)
Sysdream Labs
XSS found on www.google.fr Sysdream Labs (Sep 12)
Tien Phan
skype installer dll hijacking vulnerability - CVE-2016-5720 Tien Phan (Sep 27)
Tim Schughart
Critical Vulnerability in Ubiquiti UniFi Tim Schughart (Sep 30)
Multiple exposures in Sophos UTM Tim Schughart (Sep 30)
Persistent XSS in Abus Security Center - CVSS 8.0 Tim Schughart (Sep 29)
Travis Lee
Vulnerability Note VU#667480 - AVer EH6108H+ hybrid DVR contains multiple vulnerabilities Travis Lee (Sep 27)
TRUEL IT | Leone Pontorieri
[Adobe Flash] local-with-filesystem sandbox bypass via navigateToURL() and UI redressing TRUEL IT | Leone Pontorieri (Sep 27)
user09990
CompTIA Security+ and its insecure support system user09990 (Sep 30)
Vulnerability Lab
3GP Player 4.7.0 - DLL Hijacking Vulnerability Vulnerability Lab (Sep 23)
Kaspersky Company Account - Response XSS Vulnerability Vulnerability Lab (Sep 02)
Critical Vulnerabilities in Sparkassen Bank Server discovered by German Security Researchers Vulnerability Lab (Sep 20)
Edward Snowden won Glas of Reason - (Glas der Vernunft) Award 2016 Vulnerability Lab (Sep 28)
PHPHolidays CMS v3.00.50 - Cross Site Scripting Web Vulnerability Vulnerability Lab (Sep 08)
Kaspersky Company Account - FileManager Vulnerability Vulnerability Lab (Sep 02)
Picosmos Shows v1.6.0 - Stack Buffer Overflow Vulnerability Vulnerability Lab (Sep 08)
DllHijackAuditor 3.5 - Stack Buffer Overflow Vulnerability Vulnerability Lab (Sep 23)
FormatFactory 3.9.0 - (.task) Stack Overflow Vulnerability Vulnerability Lab (Sep 02)
Walter Hop
Unrestricted Upload/RCE in Neosense theme for WordPress Walter Hop (Sep 19)